Operating System, SMB and Windows

Operating System

SMB

Windows

Microsoft’s May 2023 Patch Tuesday Addresses 38 CVEs (CVE-2023-29336)

Tenable

MAY 9, 2023

Important CVE-2023-29336 | Win32k Elevation of Privilege Vulnerability CVE-2023-29336 is an EoP vulnerability in Microsoft’s Win32k, a core kernel-side driver used in Windows. Exploitation of this vulnerability would allow an attacker to gain SYSTEM level privileges on an affected host. This vulnerability received a CVSSv3 score of 7.8

Windows

Windows Software Review Systems Review SMB

CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability

Tenable

DECEMBER 21, 2022

CVE-2022-37958 is a remote code execution (RCE) vulnerability in the SPNEGO NEGOEX protocol of Windows operating systems, which supports authentication in applications. KB5017308: Windows 10 Version 20H2 / 21H1 / 21H2 Security Update (September 2022). KB5017328: Windows 11 Security Update (September 2022).

Windows

Windows SMB Authentication Research

Join 48,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Trending Sources

Agile Alliance

Survey Results Highlight 3 Growth Areas for MSPs: Cybersecurity, Cloud and Automation

Kaseya

AUGUST 2, 2022

By identifying the needs of SMBs and providing them with the right IT services, MSPs can help them while also unlocking growth opportunities for themselves. The Kaseya 2022 IT Operations Survey Report provides MSPs with a window into the needs, goals and ambitions of internal IT teams. Why an SMB needs an MSP.

Survey

Survey SMB Cloud Technical Review

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Microsoft’s August 2022 Patch Tuesday Addresses 118 CVEs (CVE-2022-34713)

Tenable

AUGUST 9, 2022

Azure Real Time Operating System. Microsoft Windows Support Diagnostic Tool (MSDT). Role: Windows Fax Service. Role: Windows Hyper-V. System Center Operations Manager. Windows Bluetooth Service. Windows Canonical Display Driver. Windows Cloud Files Mini Filter Driver.

SMB

SMB Azure Windows Disaster Recovery

Microsoft’s June 2022 Patch Tuesday Addresses 55 CVEs (CVE-2022-30190)

Tenable

JUNE 14, 2022

Azure Real Time Operating System. Microsoft Windows ALPC. Microsoft Windows Codecs Library. Role: Windows Hyper-V. Windows Ancillary Function Driver for WinSock. Windows Ancillary Function Driver for WinSock. Windows App Store. Windows Autopilot. Windows Container Manager Service.

Windows

Windows Azure SMB Internet

WannaCry Ransomware Review and Global Impact.

ProtectWise

MAY 15, 2017

WannaCry's primary infection vector is through publicly accessible hosts running an unpatched version of Windows via the SMB protocol. WannaCry spreads primarily over SMB, but it can also use RDP. SMB, in particular, will then be used to send an exploit for the MS17-010 vulnerability. How Does WannaCry Infect a Host?

Systems Review

Systems Review Software Review SMB Malware

Active Directory is Now in the Ransomware Crosshairs

Tenable

OCTOBER 28, 2021

The joint CISA, FBI and NSA alert described the following: “According to a recently leaked threat actor “playbook,” Conti actors also exploit vulnerabilities in unpatched assets, such as the following, to escalate privileges and move laterally across a victim’s network: 2017 Microsoft Windows Server Message Block 1.0 BlackMatter .

Software Review

Software Review Windows SMB Systems Review

Automated Patching: Spend Less Time Patching and More Time on the Beach

Kaseya

AUGUST 8, 2022

Regularly patching applications and operating systems (OS) is a crucial security practice. For an MSP, it means lost efficiency and therefore profit, while for an SMB, it means wasting your hard-fought budget. More system uptime. Why patching is important. Why 100% patch compliance is now within reach.

Software Review

Software Review Compliance Systems Review Insurance

A Hitchhiker?s Guide to Windows Containers

Linux Academy

MAY 15, 2020

This article will give you the full lowdown on Windows Containers, to prepare you to do just that. Why Windows? First, I want to acknowledge that there is a big difference between Linux and Windows containers. So why do we even need Windows containers? Each running container is isolated inside a Hyper-V VM.

Windows

Windows Linux Azure SMB

MadoMiner Part 1 - Install

AlienVault

SEPTEMBER 24, 2018

2018 seems to be a time for highly profitable cryptominers that spread over SMB file-shares. During the execution of the Install module, MadoMiner makes use of several exploits: CVE-2017-9073, RDP vulnerability on Windows XP and Windows Server 2003. CVE-2017-0143, SMB exploit. CVE-2017-0146, SMB exploit.

Malware

Malware SMB .Net Architecture

Asset Detection with Nessus Scanners: The First Step In Assessing Cyber Risk

Tenable

FEBRUARY 16, 2021

These include HTTP ( 10582 , 10107 ), SSL / TLS ( 21643 ), SSH ( 10267 ), Telnet ( 10280 ), SMB ( 10394 , 10150 ), SNMP ( 40448 ) and SMTP ( 10263 ), among many others. In the case of credentialed scans, the scanner runs a number of "local enumerators" for supported operating systems (Windows and Unix-based). Windows 6.3.

SMB

SMB Windows Linux Metrics

Attention security researchers! Submit your new 2009 Web Hacking Techniques

Jeremiah Grossman

DECEMBER 17, 2009

Session Fixation Via DNS Rebinding Quicky Firefox DoS DNS Rebinding for Credential Brute Force SMBEnum DNS Rebinding for Scraping and Spamming SMB Decloaking De-cloaking in IE7.0

Research

Research SMB Operating System Windows

Top Ten Web Hacking Techniques of 2009 (Official)

Jeremiah Grossman

JANUARY 12, 2010

Session Fixation Via DNS Rebinding Quicky Firefox DoS DNS Rebinding for Credential Brute Force SMBEnum DNS Rebinding for Scraping and Spamming SMB Decloaking De-cloaking in IE7.0

SMB

SMB Research Operating System Windows

Invincea Platform Enhances Large-Scale Enterprise Deployments With FreeSpace 4.0 and Invincea Management Service 2.1 Releases

CTOvision

AUGUST 4, 2014

Extends Platform Coverage to Windows 8.1 releases as part of the Invincea platform focus specifically on the enterprise need for rapid adoption and ongoing management of large-scale Invincea deployments, including coverage for Microsoft’s recent Windows and Office product suites. . – bg. From Invincea. The FreeSpace 4.0

Security

Security Enterprise Windows Malware

Healthcare Security: Ransomware Plays a Prominent Role in COVID-19 Era Breaches

Tenable

MARCH 10, 2021

Ryuk ransomware, the leading culprit for ransomware attacks against the healthcare industry, is known to favor a number of vulnerabilities, including those associated with Microsoft Server Message Block (SMB) as reported by Trend Micro.

Healthcare

Healthcare Research Systems Review Analysis

CTO Universe

Microsoft’s May 2023 Patch Tuesday Addresses 38 CVEs (CVE-2023-29336)

CVE-2022-37958: FAQ for Critical Microsoft SPNEGO NEGOEX Vulnerability

Webinars

Trending Sources

Survey Results Highlight 3 Growth Areas for MSPs: Cybersecurity, Cloud and Automation

Webinars

Microsoft’s August 2022 Patch Tuesday Addresses 118 CVEs (CVE-2022-34713)

Microsoft’s June 2022 Patch Tuesday Addresses 55 CVEs (CVE-2022-30190)

WannaCry Ransomware Review and Global Impact.

Active Directory is Now in the Ransomware Crosshairs

Automated Patching: Spend Less Time Patching and More Time on the Beach

Top 10 Most Read IT Management Blogs of 2019

A Hitchhiker?s Guide to Windows Containers

MadoMiner Part 1 - Install

Asset Detection with Nessus Scanners: The First Step In Assessing Cyber Risk

Attention security researchers! Submit your new 2009 Web Hacking Techniques

Top Ten Web Hacking Techniques of 2009 (Official)

Invincea Platform Enhances Large-Scale Enterprise Deployments With FreeSpace 4.0 and Invincea Management Service 2.1 Releases

Healthcare Security: Ransomware Plays a Prominent Role in COVID-19 Era Breaches

Stay Connected